Malicious code implanted in polymarket copy trading project polymarket-copy-trading-bot to steal private keys
According to Odaily, the GitHub project polymarket-copy-trading-bot has been found to contain malicious code. When the program is launched, it automatically reads the user's wallet private key from the .env file and transmits it to a hacker's server via a hidden malicious dependency package, excluder-mcp-package@1.0.4, resulting in asset theft.
Disclaimer: The content of this article solely reflects the author's opinion and does not represent the platform in any capacity. This article is not intended to serve as a reference for making investment decisions.
You may also like
A certain whale has once again withdrawn 246,259 LINK from an exchange, worth $3.08 million.
UK fintech company Revolut faces dispute with former employees over stock award tax issues
A Whale Withdraws 246,259 LINK from an exchange Again, Worth $3.08 Million
Trending news
MoreCrypto prices
More
